Vulnerability intelligence

CVE-2026-41283

OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.

CVSS Score

9.9

Critical

EPSS — Exploit Probability

0.3%

Riskier than 50% of all CVEs

Exploitation

Not in CISA KEV

No federal exploitation record

Remediation

unknown

Check vendor advisories

NVD entry PoC / advisory

1 article across 1 outlet · first covered Jun 5, 2026 · latest Jun 5, 2026

Coverage timeline

CVE-2026-41283 flaw in OpenStack Mistral lets hackers run code
securityonline.info · Jun 5, 2026